[ol8_appstream] bind9.16-libs-32:9.16.23-0.14.el8_8.2.aarch64

Contains heavyweight version of BIND suite libraries used by both named DNS
server and utilities in bind9.16-utils package.

Changelog (Show File list) (Show related packages)

• Thu Oct 05 2023 Alan Steinberg <alan.steinberg@oracle.com> - 32:9.16.23-14.2

  - stack exhaustion in control channel code may lead to DoS (CVE-2023-3341)

• Mon Jul 17 2023 Kevin Lyons <kevin.x.lyons@oracle.com> - 32:9.16.23-14.1

  - Improve RBT overmem cache cleaning (CVE-2023-2828)

• Sat Feb 25 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.14

  - Handle subtle difference between upstream and rhel (CVE-2022-3094)

• Wed Feb 08 2023 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.13

  - Prevent flooding with UPDATE requests (CVE-2022-3094)
  - Handle RRSIG queries when server-stale is active (CVE-2022-3736)
  - Fix crash when soft-quota is reached and serve-stale is active (CVE-2022-3924)

• Tue Dec 20 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.12

  - Include bind9.16-dnssec-utils in public repository (#2115322)

• Tue Oct 04 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.11

  - Bound the amount of work performed for delegations (CVE-2022-2795)

• Thu Sep 22 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.10

  - Fix possible serve-stale related crash (CVE-2022-3080)
  - Fix memory leak in ECDSA verify processing (CVE-2022-38177)
  - Fix memory leak in EdDSA verify processing (CVE-2022-38178)

• Mon Apr 11 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.9

  - Tighten cache protection against record from forwarders (CVE-2021-25220)
  - Include test of forwarders

• Fri Mar 25 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.8

  - TCP connections with 'keep-response-order' are properly close in all cases
    (CVE-2022-0396)

• Thu Jan 20 2022 Petr Menšík <pemensik@redhat.com> - 32:9.16.23-0.7

  - Keep symlink to static data but keep them in package
  - Workaround to RPM limitation